lili_ski

Bonjour bruce lee, Apparemment tout va bien Merci encore pour ton aide

De nouveau merci bruce lee . J'ai fait l'analyse avec kaspersky comme tu me l'as demande et tu trouveras le scan plus bas. J'ai l'impression qu'il ne reste plus rien de mal (je n'ai eu aucune alerte), du coup, j'en profite pour te demander s'il y a quelque chose que tu preconises (de faire ou de ne pas faire...) afin de prevenir ce genre d'attaque, un ensemble de programmes afin de proteger au mieux mon ordi Encore merci. Voici le rapport (j'ai modifie les noms des dossiers de windows messenger et windows live contacts ou on voyait mon adresse mail ) : ------------------------------------------------------------------------------- KASPERSKY ON-LINE SCANNER REPORT Sunday, June 24, 2007 7:48:19 PM Système d'exploitation : Microsoft Windows XP Professional, Service Pack 2 (Build 2600) Kaspersky On-line Scanner version : 5.0.83.0 Dernière mise à jour de la base antivirus Kaspersky : 24/06/2007 Enregistrements dans la base antivirus Kaspersky : 330167 ------------------------------------------------------------------------------- Paramètres d'analyse: Analyser avec la base antivirus suivante: standard Analyser les archives: vrai Analyser les bases de messagerie: vrai Cible de l'analyse - Poste de travail: C:\ D:\ Statistiques de l'analyse: Total d'objets analysés: 106555 Nombre de virus trouvés: 0 Nombre d'objets infectés: 0 / 0 Nombre d'objets suspects: 0 Durée de l'analyse: 02:11:02 Nom de l'objet infecté / Nom du virus / Dernière action C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\call256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\callmember256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chat256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chat512.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chatmsg1024.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chatmsg2048.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chatmsg256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\chatmsg512.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\contactgroup256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\index2.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\profile16384.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\transfer256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\transfer512.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\user1024.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\user16384.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Application Data\Skype\lili_ski\voicemail256.dbb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\Logs\Dfsr00005.log L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\pending.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\Working\database_B654_3938_5438_FCA5\dfsr.db L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\Working\database_B654_3938_5438_FCA5\fsr.log L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\Working\database_B654_3938_5438_FCA5\fsrtmp.log L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Messenger\adresse@hotmail.com\SharingMetadata\Working\database_B654_3938_5438_FCA5\tmp.edb L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Windows Live Contacts\adresse@hotmail.com\real\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Application Data\Microsoft\Windows Live Contacts\adresse@hotmail.com\shadow\members.stg L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Historique\History.IE5\MSHist012007062420070625\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Temp\~DF2872.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Temp\~DF393E.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Temp\~DFCAC5.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Temp\~DFCB00.tmp L'objet est verrouillé ignoré C:\Documents and Settings\Briand\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\ntuser.dat L'objet est verrouillé ignoré C:\Documents and Settings\Briand\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Cookies\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Historique\History.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\LocalService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\NTUSER.DAT L'objet est verrouillé ignoré C:\Documents and Settings\NetworkService\ntuser.dat.LOG L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\aswResp.dat L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\Avast4.db L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\integ\avast.int L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\AshWebSv.ws L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\aswMaiSv.log L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\log\nshield.log L'objet est verrouillé ignoré C:\Program Files\Alwil Software\Avast4\DATA\report\Protection résidente.txt L'objet est verrouillé ignoré C:\System Volume Information\_restore{D328693F-256F-4F43-8AA7-3CCC690908E6}\RP357\change.log L'objet est verrouillé ignoré C:\WINDOWS\Debug\PASSWD.LOG L'objet est verrouillé ignoré C:\WINDOWS\Internet Logs\tvDebug.log L'objet est verrouillé ignoré C:\WINDOWS\SchedLgU.Txt L'objet est verrouillé ignoré C:\WINDOWS\SoftwareDistribution\ReportingEvents.log L'objet est verrouillé ignoré C:\WINDOWS\Sti_Trace.log L'objet est verrouillé ignoré C:\WINDOWS\system32\config\Antivirus.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\AppEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default L'objet est verrouillé ignoré C:\WINDOWS\system32\config\default.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\Internet.evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SAM.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SecEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SECURITY.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software L'objet est verrouillé ignoré C:\WINDOWS\system32\config\software.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\config\SysEvent.Evt L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system L'objet est verrouillé ignoré C:\WINDOWS\system32\config\system.LOG L'objet est verrouillé ignoré C:\WINDOWS\system32\h323log.txt L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA L'objet est verrouillé ignoré C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP L'objet est verrouillé ignoré C:\WINDOWS\Temp\Perflib_Perfdata_304.dat L'objet est verrouillé ignoré C:\WINDOWS\Temp\_avast4_\Webshlock.txt L'objet est verrouillé ignoré C:\WINDOWS\wiadebug.log L'objet est verrouillé ignoré C:\WINDOWS\wiaservc.log L'objet est verrouillé ignoré C:\WINDOWS\WindowsUpdate.log L'objet est verrouillé ignoré Analyse terminée.

Merci beaucoup bruce lee pour ta reponse rapide et complete. :P Je n'ai pas pu m'occuper de tout ca hier, mais ca y est, je viens de finir tout ce que tu m'avais demande de faire. Tout s'est bien passe jusqu'au bout. Voila les 3 (longs) rapports : AVG AS --------------------------------------------------------- AVG Anti-Spyware - Rapport d'analyse --------------------------------------------------------- + Créé à: 14:41:20 23/06/2007 + Résultat de l'analyse: :mozilla.615:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.616:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.617:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.618:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.619:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.247realmedia : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@247realmedia[1].txt -> TrackingCookie.247realmedia : Nettoyé. :mozilla.784:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.785:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.786:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.787:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.788:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.789:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.790:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.791:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.792:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.793:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.794:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.795:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.796:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.797:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.798:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.799:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.800:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.801:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.802:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.803:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.804:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.805:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.806:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.807:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.808:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.809:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.810:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.811:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.812:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.813:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.814:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.815:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.816:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.817:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.865:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.2o7 : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@msnportal.112.2o7[1].txt -> TrackingCookie.2o7 : Nettoyé. :mozilla.819:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.820:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Adtech : Nettoyé. :mozilla.882:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.883:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.884:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.885:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.886:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Advertising : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@advertising[1].txt -> TrackingCookie.Advertising : Nettoyé. :mozilla.614:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Atdmt : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@atdmt[2].txt -> TrackingCookie.Atdmt : Nettoyé. :mozilla.749:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Bluestreak : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@bluestreak[1].txt -> TrackingCookie.Bluestreak : Nettoyé. :mozilla.380:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Com : Nettoyé. :mozilla.382:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Com : Nettoyé. :mozilla.679:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Dealtime : Nettoyé. :mozilla.680:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Dealtime : Nettoyé. :mozilla.751:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Doubleclick : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@doubleclick[1].txt -> TrackingCookie.Doubleclick : Nettoyé. :mozilla.33:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Estat : Nettoyé. :mozilla.570:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Googleadservices : Nettoyé. :mozilla.880:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. :mozilla.881:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Imrworldwide : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@search.live[1].txt -> TrackingCookie.Live : Nettoyé. :mozilla.706:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé. :mozilla.707:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Liveperson : Nettoyé. :mozilla.894:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Mediaplex : Nettoyé. :mozilla.708:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Onestat : Nettoyé. :mozilla.709:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Onestat : Nettoyé. :mozilla.750:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.752:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.753:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Overture : Nettoyé. :mozilla.548:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Paypal : Nettoyé. :mozilla.767:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.768:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.769:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.770:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.771:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.772:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@bs.serving-sys[2].txt -> TrackingCookie.Serving-sys : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@serving-sys[1].txt -> TrackingCookie.Serving-sys : Nettoyé. :mozilla.575:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Skype : Nettoyé. :mozilla.744:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Skype : Nettoyé. :mozilla.469:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.470:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.471:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.472:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Smartadserver : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@www.smartadserver[1].txt -> TrackingCookie.Smartadserver : Nettoyé. :mozilla.872:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.873:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.874:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.875:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.876:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Specificclick : Nettoyé. :mozilla.396:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.397:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.399:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.400:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.401:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.402:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.403:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.404:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.405:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.406:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.407:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.408:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.409:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.410:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.411:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.412:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.413:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.414:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.415:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Statcounter : Nettoyé. :mozilla.670:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.671:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.672:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.673:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Tradedoubler : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@tradedoubler[2].txt -> TrackingCookie.Tradedoubler : Nettoyé. :mozilla.754:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.755:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.756:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Weborama : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@weborama[2].txt -> TrackingCookie.Weborama : Nettoyé. :mozilla.537:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Webtrends : Nettoyé. C:\Documents and Settings\Briand\Cookies\briand@m.webtrends[1].txt -> TrackingCookie.Webtrends : Nettoyé. :mozilla.665:C:\Documents and Settings\Briand\Application Data\Mozilla\Firefox\Profiles\5eebmssb.default\cookies.txt -> TrackingCookie.Webtrendslive : Nettoyé. Fin du rapport SDFix SDFix: Version 1.88 Run by Briand on 23/06/2007 at 14:45 Microsoft Windows XP [version 5.1.2600] Running From: C:\SDFix Safe Mode: Checking Services: Name: Windows Log ImagePath: C:\WINDOWS\system32\nvsvcd.exe Windows Log - Deleted Restoring Windows Registry Values Restoring Windows Default Hosts File Restoring Missing Security Center Service Restoring Missing SharedAccess Service Rebooting... Normal Mode: Checking Files: Below files will be copied to Backups folder then removed: C:\WINDOWS\SYSTEM32\RNAPH.DLL - Deleted Removing Temp Files... ADS Check: Checking C:\WINDOWS C:\WINDOWS No streams found. Checking C:\WINDOWS\system32 C:\WINDOWS\system32 No streams found. Checking C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe No streams found. Checking C:\WINDOWS\system32\ntoskrnl.exe C:\WINDOWS\system32\ntoskrnl.exe No streams found. Final Check: Remaining Services: ------------------ Authorized Application Key Export: [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\javaw.exe"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\javaw.exe:*:Enabled:javaw" "C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour" "C:\\Program Files\\Azureus\\Azureus.exe"="C:\\Program Files\\Azureus\\Azureus.exe:*:Enabled:Azureus" "C:\\Program Files\\eMule\\emule.exe"="C:\\Program Files\\eMule\\emule.exe:*:Enabled:eMule" "C:\\WINDOWS\\system32\\svchost.exe"="C:\\WINDOWS\\system32\\svchost.exe:*:Enabled:Microsoft Update" "C:\\Program Files\\Memo\\Memo.exe"="C:\\Program Files\\Memo\\Memo.exe:*:Enabled:Desktop tool" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "C:\\Program Files\\cv\\bin\\scServer\\jre\\bin\\javaw.exe"="C:\\Program Files\\cv\\bin\\scServer\\jre\\bin\\javaw.exe:*:Enabled:Java 2 Platform Standard Edition binary" "C:\\Program Files\\Report\\bin\\scServer\\jre\\bin\\javaw.exe"="C:\\Program Files\\Report\\bin\\scServer\\jre\\bin\\javaw.exe:*:Enabled:Java 2 Platform Standard Edition binary" "C:\\Program Files\\Oxygen 5.1\\oxygen5.1.exe"="C:\\Program Files\\Oxygen 5.1\\oxygen5.1.exe:*:Enabled:<oXygen/> 5.1" "C:\\Program Files\\SCENARIGuide\\bin\\scServer\\jre\\bin\\javaw.exe"="C:\\Program Files\\SCENARIGuide\\bin\\scServer\\jre\\bin\\javaw.exe:*:Enabled:Java 2 Platform Standard Edition binary" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\Macromedia\\Dreamweaver 8\\Dreamweaver.exe"="C:\\Program Files\\Macromedia\\Dreamweaver 8\\Dreamweaver.exe:*:Enabled:Dreamweaver 8" "C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes" "C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\MSN Messenger\\msncall.exe"="C:\\Program Files\\MSN Messenger\\msncall.exe:*:Enabled:Windows Live Messenger 8.0 (Phone)" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" Remaining Files: --------------- Backups Folder: - C:\SDFix\backups\backups.zip Listing Files with Hidden Attributes: C:\Documents and Settings\Briand\Mes documents\Ma musique\Alanis Morissette-The Collection www.limitedivx.com\Thumbs.db C:\Program Files\Canon\MP Navigator 2.0\uinstrsc.dll C:\Program Files\Canon\MP Navigator 2.0\Maint.exe C:\Program Files\Fichiers communs\Adobe\ESD\DLMCleanup.exe C:\Documents and Settings\Briand\Application Data\Microsoft\ModŠles\~WRL0297.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL0286.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL0811.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL1054.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL1371.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL2628.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL3135.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL3271.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 1\RT01_Info_typoLR‚n‚\Exam\~WRL3918.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL1272.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL1380.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL2066.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL2251.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL2384.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT08_Sites web\SiteWebTricot\~WRL3342.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT10q_Qualit‚\~WRL1608.tmp C:\Documents and Settings\Briand\Mes documents\DICIT\Semestre 2\RT10q_Qualit‚\~WRL3956.tmp Listing User Accounts: Administrateur ASPNET Briand HelpAssistant Invit‚ SUPPORT_388945a0 La commande s'est termin‚e correctement. Finished HijackThis Logfile of HijackThis v1.99.1 Scan saved at 15:08:18, on 23/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe C:\PROGRA~1\MESSAG~1\StartMessager.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\acrobat_sl.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Memo.lnk = C:\Program Files\Memo\Memo.exe O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ? O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: VPN Client.lnk = ? O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{823E4E74-C038-41B9-8E5A-0BCF0589B2CE}: NameServer = 212.27.54.252,212.27.53.252 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe Merci d'avance pour ta nouvelle anayse de ces rapports

Bonjour, Avast! a detecte un virus "ramone.exe" sur ma clef USB. Pour etre sure que tout va bien sur mon ordi, j'ai suivi la procedure de pre-nettoyage indiquee sur ce forum. Antivir a detecte le ver "WORM/Rjump.E" et l'a detruit. Je vous copie le rapport HijackThis. Y a-t-il toujours quelque chose de nefaste sur mon ordi ?? Merci d'avance pour votre analyse Logfile of HijackThis v1.99.1 Scan saved at 16:41:40, on 22/06/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16473) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\AGRSMMSG.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe C:\WINDOWS\system32\dla\tfswctrl.exe C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe C:\PROGRA~1\MESSAG~1\StartMessager.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\acrobat_sl.exe C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.exe C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN C:\WINDOWS\system32\wuauclt.exe C:\Program Files\MSN Messenger\usnsvc.exe C:\Program Files\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.wanadoo.fr R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [.nvsvc] C:\WINDOWS\system\smss.exe /w O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Fichiers communs\Real\Update_OB\realsched.exe" -osboot O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe" O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe" O4 - HKLM\..\Run: [MessagerStarter Wanadoo] C:\PROGRA~1\MESSAG~1\StartMessager.exe Messager Wanadoo O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: Memo.lnk = C:\Program Files\Memo\Memo.exe O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Fichiers communs\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Lancement rapide d'Adobe Acrobat.lnk = ? O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: VPN Client.lnk = ? O8 - Extra context menu item: Convertir en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la cible du lien en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la cible du lien en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir la sélection en Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convertir la sélection en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convertir les liens sélectionnés en fichier Adobe PDF - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convertir les liens sélectionnés en un fichier PDF existant - res://C:\Program Files\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Easy-WebPrint Ajouter à la liste d'impressions - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint Impression rapide - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Imprimer - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html O8 - Extra context menu item: Easy-WebPrint Prévisualiser - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: Organise-notes - {9455301C-CF6B-11D3-A266-00C04F689C50} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Researcher\EROPROJ.DLL O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Fichiers communs\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing) O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O11 - Options group: [iNTERNATIONAL] International* O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://webscanner.kaspersky.fr/kavwebscan_unicode.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab O17 - HKLM\System\CCS\Services\Tcpip\..\{823E4E74-C038-41B9-8E5A-0BCF0589B2CE}: NameServer = 212.27.54.252,212.27.53.252 O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Fichiers communs\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers communs\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Service de l'iPod (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\FICHIE~1\SONYSH~1\AVLib\Sptisrv.exe O23 - Service: Windows Log - Unknown owner - C:\WINDOWS\system32\nvsvcd.exe (file missing)